HTTP Anti-Virus Proxy

Official HAVP Support Forum
Registration disabled, I'm tired of spambots. E-mail havp@hege.li if you have questions.
HAVP project is pretty much frozen/abandoned at this time anyway.
It is currently 22 Jun 2014 09:52

All times are UTC + 2 hours [ DST ]




Post new topic Reply to topic  [ 7 posts ] 
Author Message
 Post subject: Problem of havp
PostPosted: 04 Apr 2007 17:53 
Offline

Joined: 04 Apr 2007 17:34
Posts: 5
I have clamav 0.90 installed on my system(Debian), also I have installed havp 0.85 on my system. I have added havp in startup script.

1. Now when I start my system then it shows me error
/usr/local/sbin/havp: error while loading shared libraries: libclamav.so.2: cannot open shared object file: No such file or directory
but libclamav.so.2 is there, after my system start when I start it then it wont give me error, Tell me what's problem there.

2. I am using squid-2.6STABLE12 as parent proxy, so my request is forwarded to squid through havp. But some of the sites I cant open. It gives messege server timeout. While if I access that site by squid than it open that site. SO what's problem there?

3. I have set squid password, When I access that using squid than it prompt me password, but when I go through havp than it doesn't prompt me password and gives message that authentication failed. So is there any method to redirect squid's password request to user through havp.

Please solve my problem.


Top
 Profile  
 
 Post subject: Re: Problem of havp
PostPosted: 06 Apr 2007 14:18 
Offline
HAVP Developer

Joined: 27 Feb 2006 18:12
Posts: 687
Location: Finland
Dhaval wrote:
I have clamav 0.90 installed on my system(Debian), also I have installed havp 0.85 on my system. I have added havp in startup script.

1. Now when I start my system then it shows me error
/usr/local/sbin/havp: error while loading shared libraries: libclamav.so.2: cannot open shared object file: No such file or directory
but libclamav.so.2 is there, after my system start when I start it then it wont give me error, Tell me what's problem there.


Make sure libclamav.so.1* are removed and run ldconfig. And see that /etc/ld.so.conf have path where it is found.

Quote:
2. I am using squid-2.6STABLE12 as parent proxy, so my request is forwarded to squid through havp. But some of the sites I cant open. It gives messege server timeout. While if I access that site by squid than it open that site. SO what's problem there?


HAVP tells you server timeout? What sites?

Quote:
3. I have set squid password, When I access that using squid than it prompt me password, but when I go through havp than it doesn't prompt me password and gives message that authentication failed. So is there any method to redirect squid's password request to user through havp.


It works since 0.84. I just tested and I get password request in User->HAVP->Squid parentproxy configuration.

Cheers,
Henrik


Top
 Profile  
 
 Post subject:
PostPosted: 06 Apr 2007 17:08 
Offline

Joined: 04 Apr 2007 17:34
Posts: 5
Quote:
Make sure libclamav.so.1* are removed and run ldconfig. And see that /etc/ld.so.conf have path where it is found.


My libclamav.so.1* is not removed. I have run ldconfig. I don't have ld.so.conf file. At startup time it gives error. After starting system, when I start manually by typing /etc/init.d/havp start then it works fine.
One thing is that I have one startup script. So tell me what should I do:?:

Quote:
HAVP tells you server timeout? What sites?


I get this messege at firefox browser when I tried to serve the www.mail.yahoo.com site. While if I set squid as proxy in browser's proxy settings(port 3128), then it serves the site. I have some lists of sites with me.
Code:
         Unable to connect
Firefox can't establish a connection to the server at www.mail.yahoo.com.
    *   The site could be temporarily unavailable or too busy. Try again in a few moments.
    *   If you are unable to load any pages, check your computer's network
          connection.
    *   If your computer or network is protected by a firewall or proxy,              make sure that Firefox is permitted to access the Web.



Quote:
It works since 0.84. I just tested and I get password request in User->HAVP->Squid parentproxy configuration.


Have you configured any thing in havp to do that. because I get password request from squid by giving it proxy but when I tried to get from havp I found something like this.
Code:
ERROR
Cache Access Denied

--------------------------------------------------------------------------------

While trying to retrieve the URL: http://www.google.com/

The following error was encountered:

Cache Access Denied.

Sorry, you are not currently allowed to request:

    http://www.google.com/from this cache until you have authenticated yourself.

You need to use Netscape version 2.0 or greater, or Microsoft Internet Explorer 3.0, or an HTTP/1.1 compliant browser for this to work. Please contact the cache administrator if you have difficulties authenticating yourself or change your default password.


--------------------------------------------------------------------------------

Generated Fri, 06 Apr 2007 13:48:02 GMT by localhost.localdomain (squid/2.6.STABLE12)


But I have Firefox 2.0.0. I have tried that on Explorer 6.0 also getting same error.

Better you can give me your email id than I can give you screen shot and explain that things to you more.


Top
 Profile  
 
 Post subject:
PostPosted: 06 Apr 2007 17:49 
Offline
HAVP Developer

Joined: 27 Feb 2006 18:12
Posts: 687
Location: Finland
Dhaval wrote:
My libclamav.so.1* is not removed. I have run ldconfig. I don't have ld.so.conf file. At startup time it gives error. After starting system, when I start manually by typing /etc/init.d/havp start then it works fine.
One thing is that I have one startup script. So tell me what should I do:?:


So where is your libclamav.so? If it's not in standard place, you should add the directory to /etc/ld.so.conf.

Quote:
I get this messege at firefox browser when I tried to serve the www.mail.yahoo.com site. While if I set squid as proxy in browser's proxy settings(port 3128), then it serves the site. I have some lists of sites with me.
Code:
         Unable to connect
Firefox can't establish a connection to the server at www.mail.yahoo.com.



Do you have yahoo.com in no-proxy list? I don't know why you would get firefox error otherwise. Doesn't seem like the request is even going to HAVP. Did you verify this from HAVP logs?

Or do you even have HAVP running? Forget the startup script.

# killall havp
# /usr/local/sbin/havp

Quote:
Have you configured any thing in havp to do that. because I get password request from squid by giving it proxy but when I tried to get from havp I found something like this.


Nothing else is needed than PARENTPROXY set.


Top
 Profile  
 
 Post subject:
PostPosted: 06 Apr 2007 19:44 
Offline

Joined: 04 Apr 2007 17:34
Posts: 5
My libclamav.so files are in /usr/local/lib ditectory. There are three files in that directory. 1) libclamav.so 2) libclamav.so.2 3) libclamav.so.2.0.1
I don't have any file named ld.so.conf. I have one file ld.so.cache in /etc directory. Should I make a new file named ld.so.conf? If yes then what should I write in that.

Yes HAVP is running. Some of the sites are running fine, like google, havp, rediffmail, some news sites, So havp is running, but in some site like yahoo mail, gmail this problem occur. In log it doesn't tell me anything about that. In access.log it shows only
GET 301 http://www.mail.yahoo.com/favicon.ico 335+159 OK

I have set PARENTPROXY. Here I give my havp.config file
Code:
USER havp
GROUP havp
DAEMON false
PIDFILE /var/run/havp.havp.pid
SERVERNUMBER 8
MAXSERVERS 100
ACCESSLOG /var/log/havp/access.log
ERRORLOG /var/log/havp/havp.log
LOG_OKS true
LOGLEVEL 1
SCANTEMPFILE /var/tmp/havp/havp-XXXXXX
TEMPDIR /var/tmp
DBRELOAD 60
TRANSPARENT true
PARENTPROXY localhost
PARENTPORT 3128
X_FORWARDED_FOR false
PORT 8080
TEMPLATEPATH /usr/local/etc/havp/templates/en
WHITELISTFIRST false
WHITELIST /usr/local/etc/havp/whitelist
FAILSCANERROR true
SCANNERTIMEOUT 10
RANGE false
SCANIMAGES true
MAXSCANSIZE 0
KEEPBACKBUFFER 200000
KEEPBACKTIME 5
TRICLING 30
ENABLECLAMLIB true


Tell me what should I do?
Thanks for your fast reply.


Top
 Profile  
 
 Post subject:
PostPosted: 06 Apr 2007 21:01 
Offline
HAVP Developer

Joined: 27 Feb 2006 18:12
Posts: 687
Location: Finland
Yes create /etc/ld.so.conf with just:
/usr/local/lib

Then run ldconfig.

I'm not sure right now what could cause your Squid to reject the connection. Perhaps something in the config there.

Could it be it's only the HTTPS-pages that are not working?


Top
 Profile  
 
 Post subject:
PostPosted: 09 Apr 2007 15:08 
Offline

Joined: 04 Apr 2007 17:34
Posts: 5
Thanks Henrik :D

I have solved first problem by creating file ld.so.conf in /etc directory. Added /usr/local/lib in that ld.so.conf file. Now Working Fine.

In second problem, Here is my squid conf file
Code:
http_port 3128 transparent
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY
acl apache rep_header Server ^Apache
broken_vary_encoding allow apache
access_log /var/log/squid/access.log squid
cache_log /var/log/squid/cache.log
cache_store_log /var/log/squid/store.log
auth_param basic program /usr/local/squid/libexec/ncsa_auth /usr/local/squid/etc/squid_passwd
refresh_pattern ^ftp:      1440   20%   10080
refresh_pattern ^gopher:   1440   0%   1440
refresh_pattern .      0   20%   4320
acl ncsa_users proxy_auth REQUIRED
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443
acl Safe_ports port 80      # http
acl Safe_ports port 21      # ftp
acl Safe_ports port 443      # https
acl Safe_ports port 70      # gopher
acl Safe_ports port 210      # wais
acl Safe_ports port 1025-65535   # unregistered ports
acl Safe_ports port 280      # http-mgmt
acl Safe_ports port 488      # gss-http
acl Safe_ports port 591      # filemaker
acl Safe_ports port 777      # multiling http
acl CONNECT method CONNECT
http_access allow ncsa_users
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access allow all
http_reply_access allow all
icp_access allow all
coredump_dir /usr/local/squid/var/cache

Tell me what should I do :?:

Quote:
Could it be it's only the HTTPS-pages that are not working?

How to work https pages? I have installed havp with --enable-ssl-tunnel.
but the same problem occurs. :cry:


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 7 posts ] 

All times are UTC + 2 hours [ DST ]


Who is online

Users browsing this forum: Google [Bot] and 2 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group